MantisBT: master b649c9c9
Author | Committer | Branch | Timestamp | Parent |
---|---|---|---|---|
dregad | dregad | master | 2015-11-03 03:23 | master e8ff7b99 |
Affected Issues | 0017870: CVE-2014-8987: XSS in adm_config_report.php | |||
Changeset | Fix 0017870: XSS in adm_config_report.php This is the real correct fix for this issue (i.e. using string_attribute() Unfortunately, for some reason I somehow ended up redoing the same It is worth mentioning that string_display_line() does protect against Thanks to Patrice Morineau for pointing this out. |
|||
mod - adm_config_report.php | Diff File |